- Metacurity
- Archive
- Page 3
Archive
US Cracks Down on Four Alleged Iranian Hackers With Sanctions, $10 Million Reward
TikTok ban passes but is no slam dunk, Hackers release part of El Salvador's Bitcoin code, State Department imposes visa restrictions on 13 people linked to spyware, DPRK hackers are exploiting antivirus update mechanism, Chinese and Russian hackers use edge devices in espionage attacks, Google delays end of third-party cookies again, New keyboard app flaws emerge that enable surveillance of Chinese users, much more
Change Healthcare Cops to Paying Ransom, Warns Wide Swath of Health Information Could Have Been Stolen
Indiana wastewater plant targeted by Russian hackers, New Fancy Bear tool steals credentials, Hackers try to implant malware on Ukraine soldiers' apps, Former FSB counterintel chief sentenced to nine years, New HIPAA rule protects abortion data, Attackers were able to issue bank orders in Brazil, much more
Section 702 Renewed With Expanded Spying Powers
TikTok ban bill heads to Senate with likely passage, Nation-state hacking group breached Mitre, Hedgey Finance exploited for nearly $45 million, Belarusian hacktivist group claims attack on fertilizer plant, DPRK IT workers work as animators to raise regime funds, Chinese hackers infiltrated Volkswagen for five years, EU police chiefs go after E2EE, much more
Law Enforcement Disruption of Malicious Cyber Actors Is Gaining Steam
According to Metacurity’s timeline of law enforcement disruptions of malicious cyber actors, the rate of these actions is picking up steam in 2024, with the take-down of LabHost marking the fifth known action so far, compared to eight total in all of 2023.
FBI's Wray Ramps Up Rhetoric on Chinese Hackers, Says They're Poised to Deal a 'Devastating Blow'
Frontier Communications forced to shut down some systems following cyberattack, Akira gang has earned $42M, Jury finds Mango Markets exploiter guilty, Hacker claims theft from financial crime database, LastPass users targeted by CryptoChameleon, FIN7 targeted US carmaker, Ransomware attack threatens US and European blood supply, Cybersec pros ask Congress to solve NVD problems, much more
International Operation Shuts Down Phishing-As-A-Service Platform LabHost
GRU-linked Cyber Army of Russia attacked water utilities in Texas, Russian election disinfo campaigns kicking in at a slower pace, House passes data broker bill over Biden's objections, FISA provision could turn tech workers into informants, Cyberattack slows down NY legislature, Ransomware group stole Void Interactive's source code, Violent Russian propaganda transmitted over Disney-owned Dutch children's channel, Moldovan botnet operator busted, much more
Cybercrims Dangle $300 to T-Moble and Verizon Employees to Perform SIM Swaps
MGM Resorts sues FTC over cyberattack probe, Change Healthcare may face 2024 cyberattack costs of $1.6B, UnitedHealthCare was a no-show at Change Healthcare hearing, New pro-Palestinian leak site emerges, Omni Hotels confirms that hackers stole customer info, New Sandworm backdoor Kapeka detailed, Trust Wallet zero-day claim may be a scam, Railgun exchange denies Lazarus Group use, Nearly 600 Polish citizens targeted by Pegasus, Exploit code released for PAN-OS vunerability, much more
Researchers Stopped XZ Utils-Type Malicious Actors Targeting Three JavaScript Projects
RansomHub starts leaking Change Healthcare data, Hackers stole some Cisco Duo's customers' VoIP and SMS logs, Cryptojacker busted for stealing cloud services, Chirp Systems silent on smart lock vulnerability, Critics question Microsoft's incentive to improve security, FTC slams Cerebral for sharing customers' health info with advertisers, Ukraine hackers claim Russian drone developer breach, Palo Alto rolls out fixes for zero-day, much more
Ex-Amazon Engineer Sentenced to Three Years for Stealing Millions in Cryptocurrency
Credential stuffing attack hits 576K Roku accounts, Dutch chip giant Nexperia hit by ransomware attack, Hamas cyber official sanctioned by US Treasury Dept., Iranian group claims breach of Israel's radar systems, Hive RAT developers busted by US and Australia, Threat actor leaks 2.8m Giant Tiger customer records, Hunter's International linked to Hoya's ransomware attack, FBI warns of unpaid tolls smishing, much more
Best Infosec-Related Long Reads for the Week of 4/6/24
Tech giants break the rules in race for AI data, New approach needed to avert next XZ Utils backdoor, Drone 'hackers' are winning in Ukraine war, DNA-reliant cryptographic functions might someday protect passwords, House data broker bill might be too narrow
CISA Says Russian Hackers Compromised Agencies Using Stolen Microsoft Emails
Sisense hackers have access to all customer credentials, Biden eyes wider Kaspersky Lab ban, Threat actors targeted LastPass with deepfake audio, Palo Alto says hackers are exploiting high severity vulnerability, Vulnerability in server hardware due to supply chain software will never be fixed, Ukraine hackers shut off sensors in Moscow sewage network, D-Link NAS exploits escalate, French cities hit by large-scale attack, much more